Articles about vulnerability

Three home security systems found to be vulnerable – if hackers were hiding in bushes

Three home security systems were riddled with bugs, according to new research made public this week. Rapid7 found 10 vulnerabilities after putting Comcast XFINITY, ADT, and AT&T Digital Life systems through their paces. The issues range from a "fail open" condition on the external door and window sensors, to weak, pre-shared …
John Leyden, 18 May 2017
Mickey Mouse

HP Inc wireless mouse can be spoofed

If you're using an HP Inc wireless keyboard/mouse combo and the cursor starts behaving badly, someone might be pranking you. That's because the wireless mouse in the ERK-321A bundle is unencrypted: anyone can sniff its signals, learn its protocol and commands, and inject their own signal in a spoofing attack. German …

Yo, patch that because scum still wanna exploit WannaCrypt-linked vuln

Vulnerable Windows Server Message Block (SMB) shares central to last week's WannaCrypt outbreak are still widely deployed and frequently hunted, security researchers warn. Rapid7 found over a million internet-connected devices that expose SMB on port 445. Of those, more than 800,000 run Windows, and – given that these are …
John Leyden, 17 May 2017
Screenshot of Chrome's "Aw, snap!" error message

Chrome on Windows has credential theft bug

Google's Chrome team is working to fix a credential theft bug that strikes if the browser is running on Microsoft Windows. The bug is exploited if a user is tricked into clicking a link that downloads a Windows .scf file (the ancient Shell Command File format, a shortcut to Show Desktop since Windows 98). This exploits two …
Orange juice squeezing

Mimosa spiked! Wireless kit has multiple security holes

5G wireless vendor Mimosa Wireless has patched against a bunch of remote code execution, denial-of-service and file disclosure vulnerabilities. The bugs were reported by Ian Ling on Full Disclosure, and apply to firmware used in the company's access points, client products, and backhaul systems. The products' Web interface …

Vanilla Forums has a plain-flavoured zero-day

Updated The popular Vanilla Forums software needs patching against a remote code execution zero-day first reported to the developers in December 2016. Published by ExploitBox, the zero-day “can be exploited by unauthenticated remote attackers to execute arbitrary code and fully compromise the target application when combined with Host …
Bug

Google's PHP API client has XSS vulnerability

Users of Google's PHP API client: watch out for phishing attacks while Google patches a cross-site scripting (XSS) vulnerability in the code. The bug, discovered by DefenseCode's Leon Juranic using the company's ThunderScan source code scanner, has been acknowledged by the Chocolate Factory (as a “nice catch”), and a fix is …

Attention, Asus RT wireless router owners: Patch your gear now to squash web hijack bugs

Asus RT wireless routers have joined the SOHOpeless list – with poor cross-site request forgery protection affecting 30 variants of the devices. The design blunders, labeled CVE-2017-5891, hit RT-AC and RT-N variants using firmware older than version 3.0.0.4.380.7378. The lack of CSRF protection means that if the user has …

Paranoid Android: Antivirus app-makers resolve MitM vulnerability

An Android anti-malware application from Panda Mobile Security has been updated after researchers discovered that an insecure update mechanism left users vulnerable to man-in-the-middle attacks. Tom Moreton, a security researcher at Context, found that an insecure update mechanism in the product, which is available via Google …
John Leyden, 10 May 2017
Whack-a-mole

Veritas plugs a bunch of NetBackup vulns

Veritas has patched multiple remote code execution vulnerabilities in its NetBackup software and the appliance by the same name. The vulnerabilities should be patched with this hotfix as soon as possible. The affected versions are NetBackup 7.7.2, 7.7.3, and 8.0; and NetBackup Appliances 2.7.2, 2.7.3, and 3.0 (which is also …

Email client lib blown apart by CC: list of death

Developers using the open source LibEtPan library in their email agents need to patch against a null-dereference vulnerability. Among other things, the library is used in MailCore and MailCore 2, which provide Objective C APIs to the IMAP, POP and SMTP protocols. The bug is in LibEtPan's MIME handling in version 1.7.2 and …
Rat sillhouettes - Shutterstock

Russian RATs bite Handbrake OSX download mirror

If you use the popular video transcoder Handbrake on a Mac, the distributors want you to check the download hash after one of their mirrors was compromised. Users who downloaded a trojan-infected version of Handbrake will need to change all their KeyChain passwords (lovely), and any passwords they stored in their browsers. …

Dell to patch AMT-vulnerable systems

Dell, which last week was scrambling to work out which of its systems are affected by the Intel AMT vulnerability, is scrambling to catch up with peers HP Inc, Lenovo and Fujitsu. In a note published on Friday, the company said it would publish firmware fixes for most vulnerable kit. As readers should already know, Intel …

Cisco waves swatter at ten new vulnerabilities

Universal Plug-and-Play remains a gift-that-keeps-on-giving for infosec researchers, with Cisco announcing a critical vulnerability in the software that plagues its CVR100W wireless VPN router. Because the CVR100W doesn't fully range-check UPnP input data, an attacker can crash the device, possibly getting access to a root …

ATM security devs rush out patch after boffins deliver knockout blow

Updated A firm that supplies security software for cash machines has updated its technology after researchers uncovered a number of serious shortcomings. Flaws in GMV's Checker ATM Security technology created a means for hackers to remotely run malicious code on a targeted ATM. The CVE-2017-6968 vulnerability opened the door to all …
John Leyden, 3 May 2017
Xen logos

Qubes kicks Xen while it's down after finding 'fatal, reliably exploitable' bug

Qubes is once again regretting how long it's taken to abandon Xen's PV hypervisor, disclosing another three bugs including host escape vulnerabilities. The most serious bugs are in PV (paravirtualization) memory handling, XSA-213 and XSA-214. “An attacker who exploits either of these bugs can break Qubes-provided isolation. …
Doctor Evil

Pen-tester gets past Microsoft VB macro barriers

A bunch of white-hat researchers have turned up a nasty new vector for attacking Microsoft Outlook: a forms creation feature that bypasses macro rules so attackers can get to the victim's shell. Sensepost says its interest in looking for an attack angle arose because Microsoft blocked older weak spots in a patch for Outlook …

Super-secure Pi-stuffed nomx email server box given a good probing

Updated Security researchers claim to have uncovered a variety of serious security holes in a heavily touted secure email server technology. Nomx, the firm behind the device, strongly disputes the claims and has challenged researchers to a hacking challenge, involving the creation of an email account on a designated remotely hosted nomx …
John Leyden, 27 Apr 2017

Create a news alert about vulnerability, or find more stories about vulnerability.

Biting the hand that feeds IT © 1998–2017